AMENDMENTS TO THE CLAIMS 



1.-21. (Cancelled) 

22. (Currently amended) A method of providing access to a resource of a computer, 
comprising: 

receiving a request from a user to access the resource using a process having a 
process path; 

accessing data associated with the user stored in a memory in response to the received 
request, the data comprising a process resource access table associated with 
the user and having an ordered list of entries specifying process paths and 
access rights to resources having resource paths available to processes having 
the corresponding process paths; 

substituting a meta symbol in at least some resource paths of the resources with data 
defined responsive to the process and/or the user; 

determining a level of access to the resource for the process by searching the list of 
entries in order to find a first entry matching the process path; and 

providing the process with access rights to the resource having a resource path 
including the substituted meta symbol specified by the matching entry. 

23. -25. (Cancelled) 

26. (Currently amended) The method of claim 22[[5]], wherein the meta symbol 
represents an item of information selected from the set consisting of: an identification of a user 
of the process; a path wildcard; a directory wildcard; a character wildcard; and a portion of a 
name of the resource. 

27. (Previously presented) The method of claim 22, wherein the resource of the 
computer comprises one or more resources from the set consisting of: a data file, an application 
file, a digital device, and access to functionality provided by a second process executing on the 
computer. 
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28. (Previously presented) The method of claim 22, wherein the computer is utilized 
by a plurality of users, the plurality of users including the user, further comprising: 

determining an identity of the user; and 

identifying data stored in the memory specifying resources available to processes 
executed by the user having the determined identity. 

29. (Currently amended) A system for providing access to a resource of a computer, 
comprising: 

a memory for storing data, the data comprising a process resource access table 

associated with a user and having an ordered list of entries specifying process 
paths and access rights to resources having resource paths available to 
processes having the corresponding process paths; 

an interface module for receiving a request from the user to access the resource using 
a process having a process path; and 

a security module for determining a level of access to the resource for the process by 
substituting a mcta symbol in at least some resource paths of the resources 
with data defined responsive to the process and/or user, searching the list of 
entries in order to find a first entry matching the process path, and providing 
the process with access rights to the resource having a resource path including 
the substituted meta symbol specified by the matching entry. 

30. -32. (Cancelled) 

33. (Currently amended) The system of claim 29[[32]], wherein the meta symbol 
represents an item of information selected from the set consisting of: an identification of the 
user; a path wildcard; a directory wildcard; a character wildcard; and a portion of a name of the 
resource. 

34. (Previously presented) The system of claim 29, wherein the resource of the 
computer comprises one or more resources from the set consisting of: a data file, an application 
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file, a digital device, and access to functionality provided by a second process executing on the 
computer. 

35. (Previously presented) The system of claim 29, wherein the computer is utilized 
by a plurality of users, the plurality of users including the user, and wherein the security module 
is adapted to: 

determine an identity of the user; and 

identify data stored in the memory specifying resources available to processes 
executed by the user having the determined identity. 

36. (Currently amended) A computer program product having a computer-readable 
medium having embodied thereon program code for providing access to a resource of a 
computer, the program code comprising: 

an interface module for receiving a request from a user to access the resource using a 
process having a process path; 

a security module for accessing data stored in a memory, the data comprising a 

process resource access table associated with the user and having an ordered 
list of entries specifying process paths and access rights to resources having 
resource paths available to processes having the corresponding process paths; 
and 

wherein the security module determines a level of access to the resource for the 

process by substituting a meta symbol in at least some resource paths of the 
resources with data defined responsive to the process and/or user, searching 
the list of entries in order to find a first entry matching the process path, and 
provides the process with access rights to the resource having a resource path 
including the substituted meta symbol specified by the matching entry. 

37. -39. (Cancelled) 

40. (Currently amended) The computer program product of claim 36[[9]], wherein 
the meta symbol represents an item of information selected from the set consisting of: an 
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identification of the user; a path wildcard; a directory wildcard; a character wildcard; and a 
portion of a name of the resource. 

41 . (Previously presented) The computer program product of claim 36, wherein the 
resource of the computer comprises one or more resources from the set consisting of: a data file, 
an application file, a digital device, and access to functionality provided by a second process 
executing on the computer. 

42. (Previously presented) The computer program product of claim 36, wherein the 
computer is utilized by a plurality of users, the plurality of users including the user, and wherein 
the security module is adapted to: 

determine an identity of the user; and 

identify data stored in the memory specifying resources available to processes 
executed by the user having the determined identity. 
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